From owner-freebsd-hackers@FreeBSD.ORG Sat Dec 11 09:16:21 2004 Return-Path: Delivered-To: freebsd-hackers@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6EF2916A4CE for ; Sat, 11 Dec 2004 09:16:21 +0000 (GMT) Received: from vanity.bsd.krakow.pl (vanity.bsd.krakow.pl [62.121.132.233]) by mx1.FreeBSD.org (Postfix) with ESMTP id C441D43D1F for ; Sat, 11 Dec 2004 09:16:20 +0000 (GMT) (envelope-from diavul@bsd.krakow.pl) Received: from grazer-2.bsd.krakow.pl (unknown [10.0.0.5]) by vanity.bsd.krakow.pl (Postfix) with ESMTP id 1838B164856; Sat, 11 Dec 2004 10:16:32 +0100 (CET) Received: by grazer-2.bsd.krakow.pl (Postfix, from userid 666) id 4DC18D1DB7; Sat, 11 Dec 2004 10:16:20 +0100 (CET) Date: Sat, 11 Dec 2004 10:16:20 +0100 From: Michal Belczyk To: Julian Elischer Message-ID: <20041211091619.GA1620@grazer-2.bsd.krakow.pl> References: <20041210180332.GA27788@engelschall.com> <20041210234157.478BF840325@mail.npubs.com> <20041211082857.GA5218@engelschall.com> <41BAB35C.8030401@elischer.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Content-Disposition: inline In-Reply-To: <41BAB35C.8030401@elischer.org> X-GPG-Key-URL: http://www.bsd.krakow.pl/diavul.gpg User-Agent: Mutt/1.5.6i cc: freebsd-hackers@freebsd.org Subject: Re: rc.shutdown and jails X-BeenThere: freebsd-hackers@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Technical Discussions relating to FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sat, 11 Dec 2004 09:16:21 -0000 On Sat, Dec 11, 2004 at 12:44:12AM -0800, Julian Elischer wrote: > Ralf S. Engelschall wrote: > >On Fri, Dec 10, 2004, Nielsen wrote: > > > > > >>Ralf S. Engelschall wrote: > >> > >>>Currently a "/etc/rc.d/jail stop" just kills all processes in the > >>>individual jails. If /etc/default/rc.conf's default way of booting the > >>>jails (jail_exec="/bin/sh /etc/rc") is used this is a rather crual > >>>approach IMHO. I think if the jail is booted through /etc/rc it also > >>>should be given the chance to shutdown via /etc/rc.shutdown. If then > >>>there are still processes remaining, the killall(1) is fine, of course. > >>>This way packages and other sub-systems have the chance to perform a > >>>graceful shutdown. > >> > >>Definitely a good plan. You just have to watch out for environment > >>variable leakage into the jail subsystem when using jexec. A minor > >>concern, perhaps. > >>[...] > > > > > >Ok, good point. I think running "env -i /usr/sbin/jexec" instead of > >just "jexec" is sufficient here because the rc.shutdown reinitializes > >at least PATH and HOME again and the remaining variables should be not > >needed for the procedure. > > I think we should introduce an "init" process for jails.. > > It would be responsible for all that the normal init is responsible for > except for being the default parent.. (some might argue for that too). > Sending it a particular signal would notify it to > send shutdown signals to all its compatriots in the jail etc. That's what Nielsen's jailer or my kjailer(*) do. Just set jail_blah_exec to point it. (*) http://www.bsd.krakow.pl/kjailer.tbz -- Michal Belczyk